Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Aqs2atmXDvZ_Wa3kJ5_VnlT611c.roa
File: Aqs2atmXDvZ_Wa3kJ5_VnlT611c.roa (raw, json)
Hash identifier: ozWFzoNI6RFp2ad4mBNT2zVOe5QiUDeWmsNwG62Qigs=
Subject key identifier: 02:AB:36:6A:D9:97:0E:F6:7F:59:AD:E4:27:9F:D5:9E:54:FA:D7:57
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0192D853B3A006DE8A32BC8CB84092B4E719
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Aqs2atmXDvZ_Wa3kJ5_VnlT611c.roa
Signing time: Tue 29 Oct 2024 12:50:16 +0000
ROA not before: Tue 29 Oct 2024 12:50:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29491
IP address blocks: 195.34.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 17:37:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d8:53:b3:a0:06:de:8a:32:bc:8c:b8:40:92:b4:e7:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Oct 29 12:50:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02ab366ad9970ef67f59ade4279fd59e54fad757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c3:a0:48:36:b0:2e:9e:ce:02:cd:dd:ed:3d:
40:ef:6b:30:9f:48:57:ff:07:8c:45:b1:88:f3:99:
78:30:9a:6f:ed:50:90:82:83:ff:e4:d9:1b:c4:0e:
50:12:2d:d7:9d:0d:bf:8f:39:4d:75:08:cd:63:2b:
42:94:6c:96:29:8c:89:e4:72:73:55:12:84:48:e6:
9c:36:21:26:cd:83:e8:7d:b4:43:44:ff:bf:8d:00:
d4:fd:76:16:64:cf:a2:fe:f1:86:8f:14:aa:71:b0:
16:44:f8:fb:a7:93:78:2d:97:dd:be:4c:70:01:7b:
05:09:cd:65:42:d0:e9:9c:22:eb:c6:1f:37:8a:fb:
ee:35:3f:41:39:63:97:70:fa:80:9a:4b:e2:cc:ff:
a9:bb:17:80:98:23:df:9b:02:0d:b9:e7:cc:f4:9d:
bf:52:49:78:c3:24:0e:5c:ff:c8:27:0b:e1:36:cc:
04:93:1f:6f:86:5d:3b:5d:e3:40:a3:ea:5d:17:56:
a3:ec:c0:40:06:85:03:03:62:24:41:30:23:96:9d:
db:4f:98:8e:88:40:d5:39:8a:6d:97:66:6a:b2:f9:
dc:f9:fb:8c:62:4f:37:c8:86:01:27:3e:33:3a:c2:
93:5f:36:28:98:06:8f:ff:86:2b:9d:cd:8b:71:b9:
93:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:AB:36:6A:D9:97:0E:F6:7F:59:AD:E4:27:9F:D5:9E:54:FA:D7:57
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Aqs2atmXDvZ_Wa3kJ5_VnlT611c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.34.78.0/24
Signature Algorithm: sha256WithRSAEncryption
07:38:5a:7c:7d:0b:6d:74:a1:0c:fa:8b:a8:c9:e3:c7:c4:c8:
a1:ab:11:64:d2:8b:f7:58:45:bc:33:25:a7:23:bf:6d:82:4a:
b8:c0:04:2a:c5:05:b3:62:1e:c2:ea:0b:91:9c:ae:0e:82:ce:
f4:19:c9:cf:47:3d:80:70:fa:fa:9b:33:f5:29:64:38:06:9b:
47:98:11:85:86:91:17:15:3f:7d:9c:6b:bf:d5:db:03:39:da:
77:2d:22:18:86:d0:bf:1f:ef:a1:bf:28:68:48:43:3b:f7:fc:
bc:0d:69:61:86:fa:e4:c3:cc:66:a3:8b:36:8f:c9:ac:64:3e:
20:34:7c:40:46:e3:b5:1d:34:95:c1:97:61:15:b9:af:48:11:
35:0c:3e:90:6f:0c:a7:08:6b:67:ab:97:6c:30:f5:6a:36:77:
aa:2d:be:86:70:c4:67:4f:18:b7:f5:20:f4:e2:af:dc:ac:6c:
09:12:df:09:d5:73:3c:d4:d0:7a:14:4f:7f:fb:37:3d:cf:35:
4d:44:a9:dc:e3:dd:5e:d2:7d:8f:96:27:2f:7a:0c:cf:93:40:
8c:41:f3:b8:8e:cf:9b:f9:b8:a8:f4:e1:75:b6:1f:4d:cf:38:
39:15:4d:32:58:69:2c:9f:d8:de:ec:b8:90:37:66:5a:2e:6f:
e0:20:fa:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 19:24:58 2024 by rpki-client on console-fra.rpki-client.org